Yes, I'm fairly confident that our OSSEC package for Security Onion was compiled with OpenSSL for ossec-authd. (Not in front of a computer right now, so can't verify. )
On Tuesday, October 14, 2014, dan (ddp) <ddp...@gmail.com> wrote: > On Tue, Oct 14, 2014 at 12:13 PM, dan (ddp) <ddp...@gmail.com > <javascript:;>> wrote: > > On Tue, Oct 14, 2014 at 12:09 PM, luke <lukehi...@gmail.com > <javascript:;>> wrote: > >>> Like ossec-authd? > >> > >> Perfect. > >> > >> One point noted... Seems the virtual appliance ossec-server is not > compiled > >> with open-ssl support (might be for security reasons). I can re-compile > np, > >> but if the maintainer thinks its a good idea and there is no issue with > >> doing so, then it might be worth including open-ssl so folk can play > with > >> agent/ossec-authd? > >> > > > > That does seem very odd, and I agree with you 100%. > > > > I haven't looked into it, but maybe the security onion builds it properly? > > >> > >> > >> On Tuesday, October 14, 2014 3:44:35 PM UTC+1, dan (ddpbsd) wrote: > >>> > >>> On Tue, Oct 14, 2014 at 10:40 AM, Luke Hinds <luke....@gmail.com > <javascript:;>> wrote: > >>> > Hi All, > >>> > > >>> > I have been playing with the OSSEC virtual image and familiarizing > >>> > myself > >>> > with the server and agents. > >>> > > >>> > I really like what I see so far, and so wanted to ask if anyone had > any > >>> > experience of automating an agent deployment within an orchestrated > >>> > cloud > >>> > type environment? > >>> > > >>> > For example I would like to have the agents automatically deployed > when > >>> > a > >>> > new virtual machine is provisioned using openstack / puppet. > >>> > > >>> > However from what I can see (albeit with my limited experience) the > >>> > agent > >>> > needs to be added on the server as manual step using > 'bin/manage_agents' > >>> > with a name, IP and ID given as arguments? > >>> > > >>> > Is there anyway of automating the server agent enabling that anyone > has > >>> > explored? > >>> > > >>> > >>> Like ossec-authd? > >>> > >>> > Any other caveats I have not considered for automated agent > >>> > installation? > >>> > > >>> > One last question. I note there is an agent for VMWare ESX > 3.0,3.5..IS > >>> > there > >>> > plan to support v5.1 or v5.5? Alternatively has anyone got the agent > >>> > working > >>> > on either 5.x release of ESXi? > >>> > > >>> > >>> I don't know of anyone working on those platforms. > >>> > >>> > Many Thanks, > >>> > Luke > >>> > > >>> > -- > >>> > > >>> > --- > >>> > You received this message because you are subscribed to the Google > >>> > Groups > >>> > "ossec-list" group. > >>> > To unsubscribe from this group and stop receiving emails from it, > send > >>> > an > >>> > email to ossec-list+...@googlegroups.com <javascript:;>. > >>> > For more options, visit https://groups.google.com/d/optout. > >> > >> -- > >> > >> --- > >> You received this message because you are subscribed to the Google > Groups > >> "ossec-list" group. > >> To unsubscribe from this group and stop receiving emails from it, send > an > >> email to ossec-list+unsubscr...@googlegroups.com <javascript:;>. > >> For more options, visit https://groups.google.com/d/optout. > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to ossec-list+unsubscr...@googlegroups.com <javascript:;>. > For more options, visit https://groups.google.com/d/optout. > -- Doug Burks Need Security Onion Training or Commercial Support? http://securityonionsolutions.com -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.